CVE-2023-29131

CVSS 3.1 Score 10.0 of 10 (high)

Details

Published Jul 11, 2023

Updated: Jul 18, 2023

CWE ID 276

Summary

CVE-2023-29131 is a vulnerability affecting Siemens SIMATIC CN 4100 systems (all versions below V2.5). The issue lies in an incorrect default value in the SSH configuration. An attacker can exploit this flaw to bypass network isolation, potentially gaining unauthorized access to the affected device. This vulnerability poses a significant risk to industrial control systems and demands immediate remediation by applying the latest software patch.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/r9AK7P
https://www.cve.org/CVERecord?id=CVE-2023-29131
https://nvd.nist.gov/vuln/detail/CVE-2023-29131

Back to Vulnerability Database

CVE-2023-29131

CVSS 3.1 Score 10.0 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations